• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 6268
  • Last Modified:

Active Directory Search Base

Hey experts-
Quick question....I'm trying to figure out and understand my active directory. What is my cn=  on my Domain Controller? All of my users are under MyBusiness/Users/SBSUsers. Would it just be 'cn=SBSUsers'? or would it be something like 'cn=MyBusiness/Users/SBSUsers'

cn=?,dc=server,dc=com

My active directory looks like below
domain.com
           | Builtin
           | computers
           | domain controllers
           | ForeignSecurityPrincipals
           | MyBusiness
                         | Computers
                         | Distribution Groups
                         | Folders
                         | Groups
                         | Security Groups
                         | Users
                                  | SBSUsers
           | PastUsers
           | Resources
           | Users

Thanks in advance
0
NetAdmin2436
Asked:
NetAdmin2436
  • 3
  • 2
1 Solution
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
The users are:

CN=<User Name>,OU=SBSUsers,OU=Users,OU=MyBusiness,DC=<DomainName>,DC=local

Where <User Name> and <DomainName> should be substituted with your actual names.

Jeff
TechSoEasy
0
 
NetAdmin2436Author Commented:
Ok-
I actually have an X500 firewall that i'm trying to get to authenticate to my DC. So that's why i'm wondering what i should put in the search base on my X500 or any third party device/application.

cn=users,dc=server,dc=com is the example in the x500 manual, but i'm wondering if i need to specify the level of OU's. I think you may have answered it, but i haven't tried it yet. Early next week I should have some time and i'll give that a shot and put CN=SBSUsers,OU=Users,OU=MyBusiness,DC=<DomainName>,DC=local and see if that works for my firewall.

There's also a 'Group String:memberOf ' setting, but i think that is correct to leave at it is.  
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
Are you using Fireware Pro with this?  

I've only set up one of these things, and I don't remember liking it too much... compared to just running ISA Server on the SBS box.

I'd post a pointer question over in http://www.experts-exchange.com/Networking/Microsoft_Network/ to have those guys give this a looksee.  
Howto post pointers: http://www.experts-exchange.com/help.jsp#hi262

Jeff
TechSoEasy
0
 
NetAdmin2436Author Commented:
Yeah, fireware pro v8.2. I'll try a few things next week, and point a question if i still can't figure it out.

Thanks for the help
0
 
NetAdmin2436Author Commented:
Cool, I think i got it. I found a good explanation document on watchguards website/forums. Yeah Basically your right without the <user name> since it does a group string search. CN=SBSUsers,OU=Users,OU=MyBusiness,DC=<DomainName>,DC=local

https://www.watchguard.com/support/Fireware_Howto/HowTo_FindADSearchBase.pdf 
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now